Apache HTTP Server 'mod_proxy' Reverse Proxy Security Bypass Vulnerability

An attacker needs to host a malicious web application on the affected webserver.

The following example patterns are available:

RewriteRule ^(.*) http://www.example.com$1
ProxyPassMatch ^(.*) http://www.example.com$1


 

Privacy Statement
Copyright 2010, SecurityFocus